skills/juliusbrussee/skills/caveman/Snyk

caveman

Fail

Audited by Snyk on Jun 12, 2026

Risk Level: HIGH

Full Analysis

HIGH W007: Insecure credential handling detected in skill instructions.

Insecure credential handling detected (high risk: 0.80). Prompt mandates preserving code blocks, CLI commands, and exact error strings verbatim, so if user supplies secrets (API keys, tokens, passwords) assistant must reproduce them — enabling secret exfiltration.

Issues (1)

W007

HIGH

Insecure credential handling detected in skill instructions.

Audit Metadata

Risk Level

HIGH

Analyzed

Jun 12, 2026, 07:55 PM

Issues

1

Security Audit — snyk — caveman